Alternatives and similar repositories for entraspray

Users that are interested in entraspray are comparing it to the libraries listed below

• milosilo / DLL-Proxy-Hijacking-Microsoft-Teams

  View on GitHub
  Tutorial covering how to discover DLLs for Hijacking and how to create proxy DLLS using Microsoft Teams as an example
  ☆16Apr 7, 2021Updated 4 years ago
• SilvestriF3 / Passworld

  View on GitHub
  Passworld is a fully customizable wordlist generator
  ☆16Sep 13, 2024Updated last year
• dunderhay / git-rotate

  View on GitHub
  Leveraging GitHub Actions to rotate IP addresses during password spraying attacks to bypass IP-Based blocking
  ☆148May 23, 2024Updated last year
• Mr-Un1k0d3r / MsGraphFunzy

  View on GitHub
  Scripts to interact with Microsoft Graph APIs
  ☆44Nov 7, 2024Updated last year
• mlcsec / SigFinder

  View on GitHub
  Identify binaries with Authenticode digital signatures signed to an internal CA/domain
  ☆40Feb 6, 2024Updated 2 years ago
• Kryp7os / SharpRBCD

  View on GitHub
  An executable that simplifies adding the msds-AllowedToActOnBehalfOfOtherIdentity attribute for RBCD
  ☆49Mar 10, 2025Updated 11 months ago
• Yeeb1 / SharpLansweeperDecrypt

  View on GitHub
  Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.
  ☆45Nov 29, 2024Updated last year
• Friends-Security / sharefiltrator

  View on GitHub
  tool for enumeration & bulk download of sensitive files found in SharePoint environments
  ☆80Apr 2, 2025Updated 10 months ago
• badsectorlabs / ludus_adcs

  View on GitHub
  An Ansible Role that installs ADCS on Windows Server and optionally configures Certified Preowned templates.
  ☆17Jan 22, 2026Updated 3 weeks ago
• Wh04m1001 / GamingServiceEoP5

  View on GitHub
  ☆31May 16, 2024Updated last year
• truerustyy / wcreddump

  View on GitHub
  Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…
  ☆79Nov 18, 2024Updated last year
• NocteDefensor / Sharelord

  View on GitHub
  .NET Assembly that creates network shares,sets ACE entries for directories, sets share perms, and deletes shares. Learning project for C#
  ☆10Oct 14, 2024Updated last year
• garrettfoster13 / CVE-2025-59501

  View on GitHub
  CVE-2025-59501 POC code
  ☆25Nov 20, 2025Updated 2 months ago
• loland / inlineExecute

  View on GitHub
  Cobalt Strike BOF
  ☆42Dec 10, 2025Updated 2 months ago
• rkbennett / RunAsPy

  View on GitHub
  ☆12May 21, 2025Updated 8 months ago
• eversinc33 / JailWhale

  View on GitHub
  Docker container escape enumeration tool.
  ☆12Jan 23, 2021Updated 5 years ago
• synacktiv / Invoke-RunAsWithCert

  View on GitHub
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆171May 13, 2024Updated last year
• soufianetahiri / TeamsNTLMLeak

  View on GitHub
  Leak NTLM via Website tab in teams via MS Office
  ☆78Mar 28, 2024Updated last year
• zh54321 / GraphPreConsentExplorer

  View on GitHub
  A comprehensive list of usable Entra ID first-party clients with pre-consented Microsoft Graph scopes, in a simple YAML-file explorable w…
  ☆148Nov 16, 2025Updated 2 months ago
• TierZeroSecurity / killerPID-BOF

  View on GitHub
  BOF to terminate a process via PID as argument
  ☆28Sep 7, 2025Updated 5 months ago
• CR-DMcDonald / voipire

  View on GitHub
  ☆16May 29, 2024Updated last year
• Mayyhem / Maestro

  View on GitHub
  Abusing Azure services over C2
  ☆368Jan 20, 2026Updated 3 weeks ago
• mlcsec / SharpGraphView

  View on GitHub
  Microsoft Graph API post-exploitation toolkit
  ☆95Jul 13, 2024Updated last year
• NocteDefensor / ludus_tailscale

  View on GitHub
  Ansible Role for Ludus to provision or remove a device to/from a Tailnet.
  ☆13Dec 5, 2025Updated 2 months ago
• CyberSecurityN00b / shellfeck

  View on GitHub
  A BrainF*ck Inspired Shell Obfuscation Proof-of-Concept
  ☆16Mar 11, 2024Updated last year
• eversinc33 / RDPassSpray

  View on GitHub
  Python3 tool to perform password spraying using RDP
  ☆16Aug 14, 2023Updated 2 years ago
• blurbdust / rainbowcrackalack

  View on GitHub
  Rainbow table generation & lookup tools.
  ☆30Dec 17, 2025Updated last month
• deh00ni / NtDumpBOF

  View on GitHub
  ☆100Sep 1, 2024Updated last year
• logangoins / Cable

  View on GitHub
  .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation
  ☆400Jul 23, 2025Updated 6 months ago
• Hackcraft-Labs / SharpShares

  View on GitHub
  Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain
  ☆34Nov 13, 2023Updated 2 years ago
• Malcrove / SeamlessPass

  View on GitHub
  A tool leveraging Kerberos tickets to get Microsoft 365 access tokens using Seamless SSO
  ☆232Aug 25, 2024Updated last year
• decoder-it / KrbRelayEx

  View on GitHub
  ☆378Oct 17, 2025Updated 3 months ago
• CCob / SQL-BOF

  View on GitHub
  Library of BOFs to interact with SQL servers
  ☆16Dec 6, 2024Updated last year
• emiliensocchi / az-role-watcher

  View on GitHub
  🔔 Get notified on the addition or removal of roles and permissions in Microsoft Entra ID and Azure 🔔
  ☆16Updated this week
• cmd-tools / gtfocli

  View on GitHub
  GTFO Command Line Interface for easy binaries search commands that can be used to bypass local security restrictions in misconfigured sys…
  ☆18Jan 26, 2026Updated 2 weeks ago
• mlcsec / Graphpython

  View on GitHub
  Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit
  ☆165Dec 7, 2024Updated last year
• Mr-Un1k0d3r / BOFCode

  View on GitHub
  Bunch of BOF files
  ☆38Jun 30, 2025Updated 7 months ago
• Acceis / bqm

  View on GitHub
  Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.
  ☆40Mar 23, 2024Updated last year
• thiagopeixoto / winsos-poc

  View on GitHub
  A PoC demonstrating code execution via DLL Side-Loading in WinSxS binaries.
  ☆111Mar 10, 2024Updated last year